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METHOD AND SYSTEM FOR THE TRANSMISSION OF INFORMATION 
IN A TELEPHONE EXCHANGE SYSTEM 

FIELD OF THE INVENTION 

5 The present invention relates to telecommuni- 

cation systems. In particular, the invention relates 
to a new type of method and system for selecting a 
password encrypted with the right software version in 
a telephone exchange system, 

10 

BACKGROUND OF THE INVENTION 

A telephone network generally consists of a 
plurality of separate telephone exchanges connected to 
each other via transmission lines. The telephone net- 

15 work is managed and maintained via an operation and 
maintenance network (O&M- network) , which can be imple- 
mented e.g. on the basis of the services of an X.25 
packet network. The operation and maintenance network 
is created by connecting to it the telephone exchanges 

2 0 and other network components to be controlled. The 
other network components to be controlled include e.g. 
the transcoder (TC) , base transceiver station (BTS) 
and base station controller (BSC) . The functions for 
operating the telephone network are mainly concen- 

25 trated in control rooms and in network elements cen- 
tralizing operation and maintenance functions. An ex- 
ample of centralizing network elements like this is 
the DX 200 OMC manufactured by Nokia. 

From centralizing telephone network elements, 

30 it is possible to set up remote session connections to 
other telephone exchanges or telephone switching sys- 
tems. When a remote session is established, the source 
system, i.e. e.g. a centralizing network element, 
sends user identification data, a user identification 
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code and a password, to the target system. The target 
system is e.g. a telephone switching system. 

In the DX 200 telephone switching system and 
in the user interface (Man Machine Interface, MMI) of 

5 the operation and maintenance network, the user's 
authority and rights are determined on the basis of 
the user identification (user ID) . The MMI system is a 
certain aggregate of peripherals and software which 
can be used to execute operation and maintenance func- 

0 tions. For each user ID, an individual password has 
been defined for the verification of authenticity of 
the user. To minimize the data security risks, it is 
necessary to change the password frequently enough to 
ensure that a person not authorized to use a user ID 

5 will not be able to utilize a user ID not belonging to 
him/her. 

In the above-mentioned system, the problem is 
that different network elements may have different 
versions of password encryption software. At present, 

0 user identification on a remote connection is so im- 
plemented that, if the software versions in the source 
system and in the remote system differ from each 
other, the user must enter the required password again 
when the remote session is started. 

5 The object of the present invention is to 

eliminate the drawbacks referred to above or at least 
to significantly alleviate them. 

A specific object of the invention is to dis- 
close a new type of method and system which will obvi- 

) ate the need for re -input of a password, thus improv- 
ing the convenience of use from the user's point of 
view. 

As for the features characteristic of the 
present invention, reference is made to the claims. 

5 

SUBJECT OF THE INVENTION 

The method of the invention concerns the se- 
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lection of the manner of transmission of a password in 
a telecommunication network. The telecommunication 
system of the invention preferably comprises a source 
system, a target system, an operation and maintenance 
5 network established between the source and target sys- 
tems and an operation and maintenance center connected 
to the operation and maintenance network. The source 
and target systems are e.g. telephone switching sys- 
tems. In the method, log-on in the source system is 

10 accomplished by giving a user identification and a 
valid password corresponding to it. After the user ID 
has been entered, a remote session connection is set 
up via the operation and maintenance center to the 
target system. According to the invention, a check is 

15 carried out to establish whether the target system is 
using a different version of password encryption soft- 
ware than the source system. This check can be per- 
formed by both the source system and the target sys- 
tem. 

2 0 In the source and/or target system, passwords 

associated with different versions of password encryp- 
tion software have been stored. If the password en- 
cryption software version in the target system is an 
earlier version than that of the source system, then 
25 the password associated with the password encryption 
software version used in the target system is sent to 
the target system. Correspondingly, if the password 
encryption software version of the target system is 
newer, then the password associated with the password 

3 0 encryption software version in the source system is 

sent to it . 

The system of the invention comprises means 
for comparing the password encryption software ver- 
sions of the source and target systems with each other 
3 5 and means for sending to the target system a password 
consistent with an earlier software version, associ- 
ated with the user ID in question. 
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In an embodiment of the invent ion , the system 
comprises means for storing in a certain predetermined 
space the passwords belonging to user identification 
codes, associated with different versions of password 
5 encryption software of the source and/or target sys- 
tem. 

As compared with prior art, the present in- 
vention provides the advantage of making it unneces- 
sary for the user to input the password again when es- 
10 tablishing a remote connection to a target system. The 
password encryption software versions in the target 
and source systems are compared with each other and/ 
based on this, the right password is selected. 

15 LIST OF ILLUSTRATIONS 

In the following, the invention will be de- 
scribed in detail by the aid of some of its embodi- 
ments with reference to the drawings, wherein 

Fig. 1 presents a preferred system according 

2 0 to the invention, and 

Fig. 2 presents an example of a flow diagram 
representing the establishment of a remote connection. 

DETAILED DESCRIPTION OF THE INVENTION 

25 The system presented in Fig. 1 comprises a 

source system LEI, a target system LE2 , an operation 
and maintenance network OM established between the 
source and target systems (LEI, LE2) and an operation 
and maintenance center OMC connected to the operation 

3 0 and maintenance network OM. The source and target sys- 

tems are preferably telephone switching systems . The 
telephone switching system is e.g. a DX 2 00 switching 
center manufactured by the applicant, and the opera- 
tion and maintenance center OMC is e.g. a DX 200 OMC. 
3 5 In addition, the system comprises means 1 for compar- 
ing the password encryption software versions in the 
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target system LE2 with each other and means 2 for 
sending to the target system LE2 the password consis- 
tent with an earlier software version, associated with 
the user identification in question. Moreover, the 
5 system comprises means 3 for storing the passwords be- 
longing to user identification codes and associated 
with different versions of password encryption soft- 
ware of the source and/or target system (LEI , LE2) 
into a certain predetermined space. 

10 Fig. 2 is a flow diagram representing an ex- 

ample of the establishment of a remote connection ac- 
cording to the invention. The user of the system wants 
to establish a remote connection to a target system he 
has selected, block 20. The user is e.g. an operator 

15 who is observing the operation of the system. The user 
logs on in the source system by supplying his user 
identification and the password corresponding to it, 
block 21. Each user identification is associated with 
closely defined rights assigned in advance. In other 

20 words, the user can only access functions agreed be- 
forehand- 
Further, a remote session connection to the 
desired target system is set up via the operation and 
maintenance center, block 22. Non- transparently to the 

25 user, the password encryption software versions in the 
source and target systems are compared with each 
other, block 23. This may result in one of three dif- 
ferent situations, on the basis of which the right 
password to be sent to the target system is selected, 

30 block 24. In relation to the password encryption soft- 
ware version in the source system, the software ver- 
sion in the target system is 
the same, or 
later, or 

35 earlier. 

In the first case, the password is sent in 
the normal manner to the target system. 
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In the second case, before the comparison of 
the passwords, the target system must be informed that 
the source system has an older software version, be- 
cause otherwise the target system would consider the 
5 password incorrect and close the connection setup pro- 
cedure. In the present case, the target system is 
aware of the variations in passwords associated with 
different software versions. Thus, the target system 
is able to compare the received password with the 

10 right password. 

In the third case, the password encryption 
software version in the target system is older than 
that in the source system. In this case, before send- 
ing the password, the source system must find out 

15 which software version is in use in the target system. 
Having received this information, the source system 
can send the right password to the target system. 

The invention is not restricted to the exam- 
ples of its embodiments described above, but many 

20 variations are possible within the scope of the inven- 
tive idea defined in the claims. 



